SOC Engineer / SIEM
Permanent opportunity £55,000 - £65,000 per annum DOE On-site in Hemel Hempstead 37.5 hours per week made up of 12 hour shifts
* Please note you must be eligible for SC Clearance due to the nature of the project Job Description Join our well-established Cyber Security Operations team within Aerospace, Defense and Security. The role will include both helping to support the SOC's technology stack and onboard new customers. This is a unique opportunity to work with a range of clients, be involved in designing security platforms AND look at new ways of securing environments. What you will be doing: Maintaining the health of the SOC's technology stack Crafting and delivering solutions to onboard customers into the Managed SOC Provide engineering support to analysts Support the development of detection rules Designing Security platforms What you'll bring: Well-rounded networking knowledge Splunk and Sentinel Experience Cloud engineering knowledge for Azure and AWS A strong understanding and experience of SIEM technologies, including the collection and processing of log-data and the ingestion into the SIEM Experience of technical solving within the security-tooling space Good communications and partner leadership skills Coding and scripting experience Confirmed technical writing experience (e.g. the authoring of detailed designs, deployment instructions) It would be great if you have: Radar or Microsoft Sentinel Deploying solutions into Cloud (especially where Infrastructure as Code is used) Use of log filtering and forwarding technology (such as Splunk forwarders, Logstash, Fluentd, Fluent Bit, etc.)
#J-18808-Ljbffr
Permanent opportunity £55,000 - £65,000 per annum DOE On-site in Hemel Hempstead 37.5 hours per week made up of 12 hour shifts
* Please note you must be eligible for SC Clearance due to the nature of the project Job Description Join our well-established Cyber Security Operations team within Aerospace, Defense and Security. The role will include both helping to support the SOC's technology stack and onboard new customers. This is a unique opportunity to work with a range of clients, be involved in designing security platforms AND look at new ways of securing environments. What you will be doing: Maintaining the health of the SOC's technology stack Crafting and delivering solutions to onboard customers into the Managed SOC Provide engineering support to analysts Support the development of detection rules Designing Security platforms What you'll bring: Well-rounded networking knowledge Splunk and Sentinel Experience Cloud engineering knowledge for Azure and AWS A strong understanding and experience of SIEM technologies, including the collection and processing of log-data and the ingestion into the SIEM Experience of technical solving within the security-tooling space Good communications and partner leadership skills Coding and scripting experience Confirmed technical writing experience (e.g. the authoring of detailed designs, deployment instructions) It would be great if you have: Radar or Microsoft Sentinel Deploying solutions into Cloud (especially where Infrastructure as Code is used) Use of log filtering and forwarding technology (such as Splunk forwarders, Logstash, Fluentd, Fluent Bit, etc.)
#J-18808-Ljbffr
